1K
1Kosmos
Developers
Developer Platform

Build identity into everything.

1Kosmos BlockID unifies identity proofing, passwordless authentication and authorization on a privacy-by-design distributed ledger. Verify who someone is, let them prove it without a password, and govern what they can do — across workforce and customer journeys.

#1 in Workforce IDV — Gartner® 2025KuppingerCole® Passwordless Leader 2026NIST 800-63-3FIDO2 CertifiediBeta PAD Level 2
The APIs

Five composable services on the BlockID platform. Each is a signed REST API with a full reference, code samples and a downloadable OpenAPI spec.

Identity Verification

DocuVerify

Verify government-issued documents and match a live selfie to an ID — indisputable proof of identity at onboarding, in one signed API.

23 endpointsReference
Passwordless Authentication

Authn

Non-phishable, passwordless authentication — biometrics, OTP, push and journeys, federated over OIDC and SAML.

59 endpointsReference
Authorization

AuthZ

Govern what an authenticated identity is allowed to do — roles, fine-grained permissions and real-time decisions.

20 endpointsReference
Session Management

Sessions

Coordinate authentication sessions across devices — the backbone of QR-code and push-to-mobile login.

12 endpointsReference
Admin Backend

Admin API

The control plane behind AdminX — manage users, communities, authentication modules, providers and policy across your tenant.

233 endpointsReference
How it fits together

A typical integration moves an identity from unknown to trusted, then keeps it that way.

01

Verify

Prove a real person is who they claim with DocuVerify — document authenticity plus a live selfie.

02

Authenticate

Issue a non-phishable credential and let users sign in passwordlessly with Authn.

03

Authorize

Govern what each identity can do with roles and fine-grained permissions in AuthZ.

04

Operate

Coordinate cross-device login with Sessions and manage everything through the Admin API.

Authentication model

Every 1Kosmos service authenticates the same way: ECDSA key-pair signing over HTTPS. You hold a public/private key pair and a license key; sensitive payloads are signed so they can't be tampered with in transit. Your private key never leaves your environment.

© 2026 1Kosmos, Inc. · Developer Platform Identity verification · Passwordless authentication · Authorization